Application No. 10/803,457 PATENT 

Amendment dated March 17, 2008 

Amendment under 37 CFR 1.116 Expedited Procedure 

Examining Group 2134 

Amendments to the Claims: 

This listing of claims will replace all prior versions and listings of claims in the 

application. 
Listing of Claims: 

1 . (Currently Amended) A key auditing system, comprising: 

a key server, that provides access to a secret key by an authorized user; 
a resource server, that provides access to resources to authorized users, wherein 
authorization of a user is determined, at least in part, by the user's possession of the secret key; 
a key server audit database; 
a resource server audit database; and 

a usage analyzer that analyzes the key server audit database and the resource 
server audit database to compare events therein^ 

wherein the key server maintains a protection key usable to unlock the secret 
key held by a user workstation and the resource server is configured to block access to a 
resource unless an indication of the unlocking of the secret key at the user workstation is 
provided . 

2. (Original) The key auditing system of claim 1 , wherein the resource server is an 
application server. 

3. (Original) The key auditing system of claim 1 , wherein the resource server is a 
transaction server. 

4. (Canceled) 

5 . (Currently Amended) The key auditing system of claim 1 [[4] ] , wherein the secret 
key is such that it is only accepted within a pre-determined time period. 
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6. (Previously Presented) The key auditing system of claim 1, wherein events are 
compared according to a profile that specifies conditions under which particular keys can be 
used. 

7. (Previously Presented) The key auditing system of claim 6, wherein the 
conditions include time delay limits between when a particular key is accessed and when the 
particular key is used. 

8. (Previously Presented) The key auditing system of claim 6, wherein the 
conditions include limits on a number of times that the particular key can be used on a resource 
server in a given session. 

9. (Previously Presented) The key auditing system of claim 6, wherein the 
conditions include whether usage of the particular key would be allowed where access to the 
particular key is from a first network address or first location and usage of the particular key is 
from a second network address distinct from the first network address or from a second location 
distinct from the first location. 

10. (Original) The key auditing system of claim 1 , wherein the usage analyzer is 
configured to analyze and compare audit database records in real-time. 

1 1 . (Previously Presented) The key auditing system of claim 1 0, wherein the usage 
analyzer is configured to disable usage of a particular key in real-time response to audit database 
record comparisons. 

12. (Original) The key auditing system of claim 1 , wherein the usage analyzer is 
configured as part of the key server. 
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